Webhook for GitHub commits will soon be using simple header parsing to determine that the request is actually coming from GH. We should be implementing the "secure secret token" described on their page, but the challenge is that our webhooks are registered client side. Hmm...
Webhook for GitHub commits will soon be using simple header parsing to determine that the request is actually coming from GH. We should be implementing the "secure secret token" described on their page, but the challenge is that our webhooks are registered client side. Hmm...